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This worl<shop will seek to understand the roles and demands placed on users of security 
systems, and explore design solutions that can assist in making security systems usable 
and effective. In addition to examining end-users, this workshop will also examine the 
issues faced by security system developers and operators. The goal of the workshop is to 
build a network of interested people, share research activities and results, discuss high 
priority areas for research and development, and explore o ... 

Keywords: biometrics, passwords 

2 Practice: 'Affective' computing and emotion recognition systems: the future of 
^ biorhetric surveillance? 
^ Joseph Bullington 

September 2005 Proceedings of tlie 2nd annual conference on Information security 
curriculum development InfoSecCD '05 

Publisher: ACM Press 

Full text available: ^ pdf(85.84 KB) Additional Information: full citation , abstract , references . Index terms 

This paper concerns a subtopic of a larger research program called affective computing, 
referred to as affect recognition (the terms 'affect recognition' and 'emotion recognition' 
will be used interchangeably in this paper). It is proposed that computer systems based 
on affect recognition could play an important role in the next generation of biometric 
surveillance systems. In order to introduce affect recognition and its possible applications 
to the information security community, the present p ... 

Keywords: affective computing, biometrics, surveillance 



Real-world applications: papers: An evolutionary keystroke authentication based on 
elli psoidal hypothesis space 



http://portal.acm.org/results.cfm?coll=ACM&dl=ACM&CFID=6308619&C... 11/14/2007 



Results (page 1): biometric authentication and system operator Page 2 of 6 



Jae-Wook Lee, Sung-Soon Choi, Byung-Ro Moon 

July 2007 Proceedings of the 9th annual conference on Genetic and evolutionary 
computation GECCO '07 

Publisher: ACM Press 

Full text available: ^pclf(27Q. 85 KB) Additional Informationr fuil citation , abstract , references , index terms 

Keystroke authentication is a biometric method utilizing the typing characteristics of 
users. In this paper, we propose an evolutionary method for stable keystroke 
authenticatlori. In the method, typing characteristics of users are represented by n- 
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In this paper, we suggest an optimization approach for fingerprint authentication using 
genetic algorithms. Our application was planned so that It can be used without great 
effort for different biometric systems. Instead of estimating the required parameters as in 
the case of some methods, here they are determined with the help of genetic algorithms. 
Our own test database consists of 1200 fingerprints of 12 persons. For the confirmation of 
the results, which were found out with this test set, th ... 
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This paper considers schemes for determining which of a set of faces on screen, if any, is 
producing speech in a video soundtrack. Whilst motivated by the TREC 2002 (Video 
Retrieval Track) monologue detection task, the schemes are also applicable to voice and 
face-based biometrics systems, for assessing lip synchronization quality in movie editing 
and computer animation, and for speaker localization In video. Several approaches are 
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Strong and/or multi-factor entity authentication protocols are of crucial importancein 
building successful identity management architectures. Popular mechanisms to achieve 
these types of entity authentication are biometrics, and, in particular, voice, for which 
there are especially interesting business cases in the telecommunication and financial 
industries, among others. Despite several studies on the suitability of voice within entity 
authentication protocols, there has been little or no fo ... 
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IPSE DIXIT Biometrics as an array of deployable technologies presumes an elaborate 
infrastructure, including underlying science that justifies its claims of detection, 
classification, identification and authentication of individual human identities; particularly 
of those who are runaways, illegal immigrants, fugitives, criminals, terrorists, and so 
on.This will now too often be literally a matter of life and death, both for the public and 
the individuals identified .The "New Security Paradigm" em ... 
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Supervisory Control and Data Acquisition, otherwise known as SCADA, is a, system for 
gathering real time data, controlling processes, and monitoring equipment from remote 
locations. As more companies are implementing an open SCADA architecture through the 
Internet to monitor critical infrastructure components such as power plants, oil and gas 
pipelines, chemical refineries, flood control dams, and waste and water systems, vital 
systems are becoming increasingly open to attack. This paper provides ... 
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We combine well-known techniques from the areas of error-correcting codes and 
cryptography to achieve a new type of cryptographic primitive that we refer to as a fuzzy 
commitment scheme. Like a conventional cryptographic commitment scheme, our fuzzy 
commitment scheme Is both concealing and binding: it Is infeasible for an attacker to 
learn the committed value, and also for the committer to decommit a value in more than 
one way. In a convent ... 
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The ability to verify automatically and with great accuracy the identity of a person has 
become crucial in everyday life. Biometrics is an emerging topic in the field of signal 
processing. Our research on biometrics aims at developing a complete framework useful 
to control access. This technical demo shows the latest image processing techniques for 
face detection developed at France Telecom and for face recognition developed at 
Eurecom. Using only one computer and one standard webcam, our b ... 
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review 

We present a model and protocol for anonymous credentials. Rather than using deterrents 
to ensure non-transferability, our model uses secure hardware with biometric 
authentication capabilities. Using the model combining biometric authentication with 
anonymous credentials in the wallet-with-observer architecture proposed by Bleumer [4], 
we formalize the requirements of an anonymous credential protocol. In doing so, we 
define what it means for a protocol to be strongly subliminal-free, and s ... 
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This paper describes several results obtained during the implementation and evaluation of 
a speech complemented interface to a vehicle monitoring system. A speech 
complemented interface is one wherein the operations at the Interface (keyboard and 
mouse, for instance) are complemented by operator speech not directly processed by the 
computer. Such systems from an interface perspective have 'low brow' multimodal 
characteristics. Typical domains include vehicle tracking applications (taxis, buses, ... 
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The use of passwords is a major point of vulnerability in computer security, as passwords 
are often easy to guess by automated programs running dictionary attacks. Passwords 
remain the most widely used authentication method despite their well-known security 
weaknesses. User authentication is clearly a practical problem. From the perspective of a 
service provider this problem needs to be solved within real-world constraints such as the 
available hardware and software infrastructures. From a user' ... 
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Access to systems that need protection is usually restricted by asking the user to prove 
her identity and to authenticate. Combination of user name and password (or PIN) is the 
most common technique used for this purpose. Unfortunately, user-name/password based 
authentication is vulnerable to various types of password guessing attacks. Some 
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This paper presents a classification of implementations of access control systems based 
on a lattice taxonomy where the axes are properties of the implementation. The current 
taxonomy has six axes representing: partitioning of control over sharing of access control 
credentials, distribution of the state relevant to access control decisions,. delity of policy 
enforcement, the identity resolution mechanism, local versus centralized decisions,and 
static or adaptive trust management.Analysis of implem ... 
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Authentication is the process of verifying a person's claim of identity. The designers of 
secure computer systems have incorporated many techniques of user-validation from law 
enforcement, from industrial security, and from the financial community. Several methods 
have also been developed explicitly for use in computer systems. This paper will present 
an overview of all methods of authentication currently used in computer security. 
Implementation considerations will also be discussed. 
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21 Location, trackin g , nomadic computing: A bluetooth infrastructure for automatic \ 
s ervic es acces s in ubiquitous and nomadic computin g environments 
Massimo Ficco, Maurizio D'Arienzo, Gianni D'Angelo 

October 2007 Proceedings of the 5th ACM international workshop on Mobility 

management and wireless access MobiWac '07 
Publisher: ACM 

Full text available: ^ pdf(964.58 KB) Additional Information: full citation , abstract , references , index terms 

The proliferation of mobile devices and wireless technologies pave the ground to new 
scenarios that attract the interest of service providers and business operators. However, 
to let mobile users able to receive the same services independently from the context in 
which they operate, several open issues need to be solved. One of these issues is related 
to the current levels of security that often require mobile users to exchange secret 
credentials with the network operators or an authentication ... 

Keywords: Bluetooth, authentication, context-aware, ubiquitous computing, wireless LAN 
access 



22 Assurance in life/nation critical endeavors: Assurance in life/nation critical endeavors Q 
^ a panel 

Steven J. Greenwald, Marv Schaefer 

September 2002 Proceedings of the 2002 workshop on New security paradigms NSPW 
'02 

Publisher: ACM Press 

Full text available: ^ pdf(509.28 KB) Additional Information: full citation , abstract , index terms 

Our thesis is that biometric and other intertwined technologies will be used to supplennent 
the work of people in the security field. When these technologies are used, we fear that a 
high degree of misinterpretation and error is likely. Because of this, we need to identify 
the technical measures required for these systems. This thesis, along with a justification, 
and proof sketch, was given to the panelists. Five areas of the technology life-cycle were 
investigated: modeling, implementation, inter ... 

Security in embedded systems: Design challen g es Hll 
^ Srivaths Ravi, Anand Raghunathan, Paul Kocher, Sunil Hattangady 

^ August 2004 ACM Transactions on Embedded Computing Systems (TECS), volume 3 issue 
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Publisher: ACM Press 

Full text available- «| Ddf(3J7Mm Additional Information: full citation , abstract, references , dtings. index 

terms , review 

Many modern electronic systems— including personal computers, PDAs, cell phones, 
network routers, smart cards, and networked sensors to name a few— need to access, 
store, manipulate, or communicate sensitive information, making security a serious 
concern in their design. Embedded systems, which account for a wide range of products 
from the electronics, semiconductor, telecommunications, and networking industries, face 
some of the most demanding security concerns— on the one hand, they are oft ... 

Keywords: Embedded systems, architecture, authentication, battery life, cryptographic 
algorithms, decryption, encryption, hardware design, processing requirements, security, 
security attacks, security protocols, tamper resistance 



24 Identity authentication based on keystroke latencies [ijl 
^ Rick Joyce, Gopal Gupta 

^ February 1990 Communications of the ACM, volume 33 issue 2 
Publisher: ACM Press 

Full text available- gl Ddf(823.00 KBl Additional Infomnation: full citation , abstract, references , citings, iodex 
^ terms , review 

The variables that help make a handwritten signature a unique human identifier also 
provide a unique digital signature in the form of a stream of latency periods between 
keystrokes. This article describes a method of verifying the identity of a user based on 
such a digital signature, and reports results from trial usage of the system. 

25 On-line e-wallet system with decentralized credential keepers ||| 
Stig Frode Mjolsnes, Chunming Rong 

February 2003 Mobile Networks and Applications, volume 8 issue i 
Publisher: Kiuwer Academic Publishers 

Full text available: ^ pdf(240.23 KB) Additional Information: full citation , abstract , references , index terms 

We propose a generalization of the architecture of an electronic wallet, as first developed 
in the seminal European research project CAFE. With this model you can leave most of the 
content of your electronic wallet at the security of your residential electronic keeper, while 
roaming with your favorite mobile terminals. Emerging mobile handsets with both short 
range Bluetooth and cellular GPRS communications provide a sufficient communication 
platform for this electronic wallet architecture. Howe ... 

Keywords: digital credentials, e-wallet architecture, mobile commerce, payment 
protocols, privacy 



2^ Security: Sound methods and effective tools for model-based security engineering Q 
with UML 
Jan Jiirjens 

May 2005 Proceedings of the 27th international conference on Software engineering 
ICSE '05 , Proceedings of the 27th international conference on Software 
engineering ICSE '05 

Publisher: ACM Press, IEEE Computer Society 

Full text available: g|^( 205.95 KB ). Additional Information: full citation , abstract , references , citings, index 
Publisher Site , ^©03^ 

Developing security-critical systems is difficult and there are many well-known examples 
of security weaknesses exploited in practice. Thus a sound methodology supporting 
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secure systems development is urgently needed. We present an extensible verification 
framework for verifying UML models for security requirements. In particular, It includes 
various plugins performing different security analyses on models of the security extension 
UMl^ec of UML. Here, we concentrate on an automated tfieorem prove ... 

Keywords: UML, cryptographic protocol, security, unified modeling language, verification 
biometric authentication, verification framework 



27 Session 2: survivability: Safe and sound: a safety-critical approach to security | 

^ Sacha Brostoff, M. Angela Sasse 

^ September 2001 Proceedings of the 2001 workshop on New security paradigms NSPW 
'01 

Publisher: ACIVI Press 

Full text available: fg|Ddfn.04 MB) Additional Information: full citati on, abstract, references. ciUngs. index 

terms 

This paper firstly argues that the design of security applications needs to consider more 
than technical elements. Since almost all security systems involve human users as well as 
technology, security should be considered, and designed as, a soclo-technical work 
system. Secondly, we argue that safety-critical systems design has similar goals and 
issues to security design, and should thus provide a good starting point. Thirdly, we 
identify Reason's (1990) Generic Error Modeling System/Basic El ... 

28 Image and video processing for multimedia surveillance systems: Multimedia | 
^ surveillance systems 

^ Rita Cucchiara 

November 2005 Proceedings of the third ACi^ international worlcshop on Video 

surveillance & sensor networlcs VSSN '05 
Publisher: ACM Press 

Full text available: ^ pdf(372.86 KB) Additional Information: full citation , abstract , references . Index terms 

The Integration of video technology and sensor networks constitutes the fundamental 
Infrastructure for new generations of multimedia surveillance systems, where many 
different media streams (audio, video, images, textual data, sensor signals) will concur to 
provide an automatic analysis of the controlled environment and a real-time interpretation 
of the scene. New solutions can be devised to enlarge the view of traditional surveillance 
systems by means of distributed architectures with fi ... 

Keywords: multiple cameras, sensor network, survey, video surveillance 

29 Trusted products evaluation | 
^ Santosh Chokhani 

^ July 1992 Communications of the ACM, volume 35 issue 7 
Publisher: ACM Press 

Full text available: ^ pdf(4.09 MB) Additional Information: full citation , rgferences, citings, index terms , 
■ la*^ revievi/ 



Keywords: TCSEC, covert channel analysis, integrity, security, trust 

30 Trustworthy systems: Symmetric behavior-based trust: a new paradigm for internet Q 
computing 

Vlvek Haldar, Michael Franz 
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^ September 2004 Proceedings of the 2004 workshop on New security paradigms NSPW 
^ -04 

Publisher: ACM Press 

Full text available: Q pdf(76.86 KB) Additional Information: full citation , abstract , references 

Current models of Internet Computing are highly asymmetric - a host protects itself from 
malicious mobile Java programs, but there is no way to get assurances about the behavior 
of a program running remotely. The asymmetry stems from a behavior-based security 
model: hosts ensure conformance to a given security policy by restricting the actions of 
programs. In contrast, security models that are based on cryptography (including code 
signing) are Inherently symmetric by design but do not match the ... 

31 Bioinformatics and ethics: 3D face authentication by mutual coupled 3D and 2D Q 
^ feature extraction 

^ T. H. Lin, W. P. Shih, W. C. Chen, W. Y. Ho 

iVIarch 2006 Proceedings of the 44th annual Southeast regional conference ACM-SE 
44 

Publisher: ACM Press 

Full text available: ^ pdf(249.28 KB) Additional Information: full citation , abstract , references , index terms 

In this paper, we present a novel method for automatic 3D face authentication. We 
introduce a coupled 2D and 3D feature-extraction method to determine the positions of 
eye sockets. The nose tip is considered as the extreme vertex along the normal directions 
of eye socl<ets. Once the nose tip and eye socl<ets are found, the bilateral symmetrical 
plane will be determined. The central profile which is on the bilateral symmetrical plane is 
the foundation for recognizing human face in our method. We us ... 

Keywords: automatic feature detection, face authentication, face recognition 

32 Columns: Risks to the public in computers and related systems Q 

^ Peter G. Neumann 

^ November 2003 ACM SIGSOFT Software Engineering Notes, volume 28 issue 6 
Publisher: ACM Press 

Full text available:^ pdf(1 24.63 KB) Additional Information: full citation 



33 A smartcard for authentication in WLANs 
Marc Loutrei, Pascal Urien, Guy Pujolie 

October 2003 Proceedings of the 2003 IFIP/ACM Latin America conference on 

Towards a Latin American agenda for network research LANC '03 
Publisher: ACM Press 

Full text available: "gj pdf(333.05 KB) Additional Information: full citation , abstract , references , index terms 

Wireless LANs based on the IEEE 802.11b standard have spread very quickly over the 
past few years. Nevertheless a lot of security issues remain and stop Its deployment in 
corporations. One of the most important issues is the authentication of a terminal to an 
Access Point. We propose an interface to integrate the Extensible Authentication Protocol 
into smartcards and will show that smartcards could constitute the de-facto device for 
authentication in Wireless LAN as they are for GSI^ and will ... 



Keywords: authentication, smartcard, wireless LANs 



34 Security issues for wireless ATM networks 
Danai Patiyoot 
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^ January 2002 ACM SIGOPS Operating Systems Review, Volume 36 issue i 
^ Publisher: ACM Press 

Full text available: ^pdf(1.75 MB) Additional Information: full citation , abstract , references , index terms 

To be able to fulfil the need of user in wireless ATM, the systenn has to acquire features. 
One of the system features for the wireless ATM is functionality especially the security 
aspect. There is so far tittle, if not none, security consideration in the developing of 
wireless ATM standard. Therefore a wide range of features in security functions is in 
consideration. This paper tried to define the features of security In wireless ATM networks 
considering it features fronn existing fixed ATM netwo ... 

Keywords: security, wireless ATM 

35 Invited Discussions: Interacting with identification technology: can it make us more Q 
^ secure? 

^ Jean Scholtz, Jeff Johnson, Ben Shneiderman, Peter Hope-Tindall, Marcus Gosling, Jonathon 
Phillips, Alan Wexelblat 

April 2002 CHI '02 extended abstracts on Human factors in computing systems CHI 
•02 

Publisher: ACM Press 

Full text available: ^ pdffl 42.76 KB) Additional Information: full citation , citings 



Keywords: biometrics, civil liberties, face recognition, national id card, privacy, security 



36 Computer security: A conceptual framework for testing biometric al g orithms within 
^ o perating systems' authentication 

^ Arslan Bromme, Marcel Kronberg, Oliver Ellenbeck, Oliver Kasch 

March 2002 Proceedings of tlie 2002 ACM symposium on Applied computing SAC '02 
Publisher: ACM Press 

Full text available: ^ pdf(675.28 KB) Additional Information: full citation , abstract , references , index terms 




This paper presents a conceptual framework for testing the implementation of biometric 
algorithms within Unix and Windows NT/2000 operating systems' login authentication. To 
support the analysis and evaluation of biometric algorithms, a data logging module will be 
used, enabling the collection of quantitative data, e.g. timestamps, biometric raw data, 
(pre)processed data, and return codes from each run of a biometric authentication. It is 
shown how biometric algorithms and a data logging module ... 

Keywords: biometric authentication, evaluation, operating system, robustness, testing 
biometric algorithms 



37 A pplied cryp togra phy: Reusable cry ptogra phic fuzzy extractors Q 
^ Xavier Boyen 

^ October 2004 Proceedings of the 11th ACM conference on Computer and 





We show that a number of recent definitions and constructions of fuzzy extractors are not 
adequate for multiple uses of the same fuzzy secret— a major shortcoming in the case of 
biometric applications. We propose two particularly stringent security models that 
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specifically address the case of fuzzy secret reuse, respectively from an outsider and an 
insider perspective, in what we call a chosen perturbation attack. We characterize the 
conditions that fuzzy extractors need to satisfy to be sec ... 

Keywords: biometric keying, chosen perturbation security, fuzzy extractor, zero storage 
biometric authentication 



38 Consistency enforcement and secure grids: Mesh: secure, lightweight grid 
^ middleware using existing SSH infrastructure 
^ Paul Z. Kolano 

June 2007 Proceedings of the 12th ACM symposium on Access control models and 
technologies SACMAT '07 

Publisher: ACM Press 

Full text available: ^ pdfH 78.90 KB) Additional Information: full citation , abstract , references , index terms 

Grid computing promises gains in effective computational power, resource utilization, and 
resource accessibility, but in order to achieve these gains, organizations must deploy grid 
middleware that, in most cases, does not adhere to fundamental security principles. This 
paper introduces a new lightweight grid middleware called Mesh, which is based on the 
addition of a single sign-on capability to the built-in public key authentication mechanism 
of SSH using system call interposition. The init ... 

Keywords: SSH, access control, authentication, authorization, delegation, distributed 
systems, grids, middleware, security, single sign-on 



39 Payments and banking with mobile personal devices 
^ Amir Herzberg 

^ May 2003 Communications of the ACM, volume 46 issue 5 
Publisher: ACM Press 

Full text available: "^ pdfClsa.SZ KB) Additional Information: full citation , abstract , references , citings, index 
jg f html(31.60 KB) terms , review 

Mobile devices enable secure, convenient authorization of e-banking, retail payment, 
brokerage, and other types of transactions. 

Posters: Towards robust person recognition on handheld devices using face and 
^ speaker identification technologies 
^ Timothy J. Hazen, Eugene Weinstein, Alex Park 

November 2003 Proceedings of the 5th international conference on Multimodal 
interfaces ICMI '03 

Publisher: ACM Press 

Full text available- fl3 Ddfd 18 84 KB) Additional Information: full citation , abstract , reference s, citin gs, index 
• liy-y— A : terms 

Most face and speaker identification techniques are tested on data collected in controlled 
environments using high quality cameras and microphones. However, the use of these 
technologies in variable environments and with the help of the inexpensive sound and 
image capture hardware present in mobile devices presents an additional challenge. In 
this study, we investigate the application of existing face and speaker identification 
techniques to a person identification task on a handheld device. The ... 

Keywords: face identification, handheld devices, multi-biometric interfaces, speaker 
Identification 
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Columns: Risks to the public in computers and relate d systems 
^ Peter G. Neumann 

^ March 2004 ACM SIGSOFT Software Engineering Notes, volume 29 issue 2 
Pubiisher: ACM Press 

Full text available: g pdf(165.39 KB) Additional Information: full citation 



42 A model of OASIS role-based access control and its support for active security , i 

Jean Bacon, Ken Moody, Walt Yao 
^ November 2002 ACM Transactions on Information and System Security (TISSEC), 

Volume 5 Issue 4 
Publisher: ACM Press 

Full text available- f?| pdf(352.06 KB) Information: full citation , abstract , references , citings, index 

terms 

OASIS is a role-based access control architecture for achieving secure interoperation of 
services in an open, distributed environment. The aim of OASIS is to allow autonomous 
management domains to specify their own access control policies and to interoperate 
subject to service level agreements (SLAs). Services define roles and implement formally 
specified policy to control role activation and service use; users must present the required 
credentials, in an appropriate context. In order to activat ... 

Keywords: Certificates, OASIS, RBAC, distributed systems, policy, role-based access 
control, service-level agreements 

*3 Risks to the public: Risks to the public in computers and related systems [ 
^ Peter G. Neumann 

^ September 2004 ACM SIGSOFT Software Engineering Notes, volume 29 issue 5 
Publisher: ACM Press 

Full text available: ^ pdf(105.37 KB ) Additional Information: full citation , abstract 

Edited by Peter G. Neumann (Risks Forum Moderator and Chairman of the ACM 
Committee on Computers and Public Policy), plus personal contributions by others, as 
indicated. Opinions expressed are individual rather than organizational, and all of the 
usual disclaimers apply. We address problems relating to software, hardware, people, and 
other circumstances that affect computer systems. To economize on space, we tersify 
most items and include pointers to items in the online Risks Forum: (R i j) deno ... 
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^ Session 2: Email feedback: a policy-based a p proach to ov ercom ing false positives [gj 
^ Saket Kaushik, William Winsborough, Duminda Wijesekera, Paul Ammann 
^ November 2005 Proceedings of the 2005 ACM workshop on Formal methods in 
security engineering FMSE '05 
Publisher: ACM Press 

Full text available: ^ pcif(205.07 KB) Additional Information: full citation , abstract , references , index terms 

Current email-control mechanisms, though highly effective, are pro-ne to dropping 
desirable messages. This can be attributed to their coarseness in filtering out undesirable 
messages from desirable ones. As a result policies to control undesirable messages are 
often overly permissive. To allow policies to be more restrictive, the transmission 
mechanism must be made aware of the ways to document a message so that it is 
acceptable downstream, thus giving the senders a chance of meeting those requi ... 

Keywords: constrairit logic programming, email/spam control, policy advertisement, 
policy feedback 



45 Reflection as a mechanism for software integrity verification I 
^ Diomidis Splnellis 

^ February 2000 ACM Transactions on Information and System Security (TISSEC), volume 
3 Issue 1 
Publisher: ACM Press 

Additional Information: full citation , abstract , references , index terms . 



Full text available:^ 

The integrity verification of a device's controlling software is an important aspect of many 
emerging information appliances. We propose the use of reflection, whereby the software 
is able to examine its own operation, in conjunction with cryptographic hashes as a basis 
for developing a suitable software verification protocol. For more demanding applications 
meta-reflective techniques can be used to thwart attacks based on device emulation 
strategies. We demonstrate how our approach can be ... 

Keywords: cryptographic hash function, embedded device, message digest 



46 Design considerations: Divide and conquer: the role of trust and assurance in the Q 

^ design of secure socio-technical system s 

^ Ivan Flechais, Jens Riegeisberger, 1^. Angela Sasse 

September 2005 Proceedings of the 2005 wori<shop on New security paradigms NSPW 
'05 

Publisher: ACM Press 

Full text available: ^ p df (2.79 MB) Additional Information: fu ll citation , abstract , references 

In order to be effective, secure systems need to be both correct (i.e. effective when used 
as intended) and dependable (i.e. actually being used as intended). Given that most 
secure systems involve people, a strategy for achieving dependable security must address 
both people and technology. Current research in Human-Computer Interactions in 
Security (HCISec) aims to increase dependability of the human element by reducing 
mistakes (e.g. through better user interfaces to security tools). We argue ... 



47 Special session 1 : machine learning for visual information retrieval: An interactive 

^ system for mental face retrieval 

^ Yuchun Fang, Donald Geman, Nozha Boujemaa 

November 2005 Proceedings of the 7th ACM SIGMM internatlonai workshop on 
Multimedia information retrieval MIR '05 
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Publisher: ACM Press 

Full text available: pclf(222.60 KB) Additional Information: full citation , abstract , references , index terms 

We propose a system to "retrieve" the mental image of a face from a large database 
using Bayeslan inference and relevance feedback. Since the "target Image" exists only In 
the mind of the user, mental image retrieval differs sharply from standard, example- 
based retrieval and has not been widely studied. In designing the relevance feedback 
engine, we adopt probabilistic models for the display and answer processes. The answer 
model is designed to capture properties of human cognition in choosing a ... 

An interactive codesign environment for domain-specific coprocessors 
Patrick Schaumont, Doris Ching, Ingrid Verbauwhede 

January 2006 ACM Transactions on Design Automation of Electronic Systems 

(TODAES), Volume 11 Issue 1 
Publisher: ACM Press 

Full text available: ^ pdf ( 406.61 KB) Additional Information: full citation, abstract , references , djtings, index 
^ terms 

Energy-efficient embedded systems rely on domain-specific coprocessors for dedicated 
tasks such as baseband processing, video coding, or encryption. We present a language 
and design environment called GEZEL that can be used for the design, verification and 
implementation of such coprocessor-based systems.The GEZEL environment creates a 
platform simulator by combining a hardware simulation kernel with one or more 
instruction-set simulators. The hardware part of the platform is programmed in GEZEL ... 

Keywords: Cosimulation, hardware description language, hardware-software codesign 



49 Chip-secured data access: confidential data on untrusted servers 
Luc Bouganim, Philippe Pucheral 

August 2002 Proceedings of the 28th international conference on Very Large Data 
Bases - Volume 28 VLDB '2002 

Publisher: VLDB Endowment 

Full text available: 'gj pdfd 38.58 KB) Additional Information: full citation , abstract , references , index terms 

The democratization of ubiquitous computing (access data anywhere, anytime, anyhow), 
the increasing connection of corporate databases to the Internet and the today's natural 
resort to Web-hosting companies strongly emphasize the need for data confidentiality. 
Database servers arouse user's suspicion because no one can fully trust traditional 
security mechanisms against more and more frequent and malicious attacks and no one 
can be fully confident on an Invisible DBA administering confidential ... 

50 Access management for distributed systems: Using trust and risl< in role-based 
access control policies 

Nathan Dimmock, Andras Belokosztolszki, David Eyers, Jean Bacon, Ken Moody . 
June 2004 Proceedings of the ninth ACM symposium on Access control models and 

technologies SACMAT '04 
Publisher: ACM Press 

Full text available- W Ddf^222 48 KB) Additional Information: full citation , abstract , references , citing s, index 

. ^M--x = terms 

Emerging trust and risk management systems provide a framework for principals to 
determine whether they will exchange resources, without requiring a complete definition 
of their credentials and intentions. Most distributed access control architectures have far 
more rigid policy rules, yet in many respects aim to solve a similar problem. This paper 
elucidates the similarities between trust management and distributed access control 
systems by demonstrating how the OASIS access control system and i ... 



http://portal.acm.org/results.cfm?query=biometric%20authentication%20... 11/14/2007 



Results (page 3): biometric authentication and system operator 



Page 4 of 6 



Keywords: OASIS, SECURE, access control, risk, trust 



51 Multilateral security a concept and examples for balanced security B 
Kai Rannenberg 

February 2001 Proceedings of the 2000 workshop oh New security paradigms NSPW 
•00 

Publisher: ACM Press 

Full text available: ^pclf (1.05 MB) Additional Information: full citation , references , citings , index terms 



Keywords: GSM, mobile communication, multilateral security, negotiation, privacy, 
protection, reachability management, security management, simulation study 



52 Special session 2: query systems for data retrieval in large personal image and video Q 
^ databases: Human performance measures for video retrieval 
^ Gary Marchionini 

October 2006 Proceedings of the 8th ACM international worlcshop on Multimedia 
information retrieval MIR '06 

Publisher: ACM Press 

Full text available:^ pdf(454. 14 KB) Additional Information: full citation , abstract , references , index terms 

In this paper, we describe the challenges of assessing human performance during video 
retrieval episodes and describe several measures of human performance that have been 
used in developing visual surrogates for the Open Video Digital Library (http://www.open- 
video.org). These include two sets of cognitive performance measures that aim to assess 
human recognition and inference and a set of attitudinal measures that aim to assess user 
satisfaction with video surrogates. 

Keywords: exploratory search, human-computer information retrieval, information 
Interaction, video retrieval 



53 .Security, privacy and anonymity: Privacy preserving multi-factor authentication with Q 
^ biometrics 

^ Abhilasha Bhargav-Spantzel, Anna Squicciarini, Elisa Bertino 

November 2006 Proceedings of the second ACM workshop on Digital identity 
management DIM '06 

Publisher: ACM Press 

Full text available:^ pdf(228.45 KB) Additional Information: full citation , abstract , references , index terms 

An emerging approach to the problem of reducing the identity theft is represented by the 
adoption of biometric authentication systems. Such systems however present however 
several challenges, related to privacy, reliability, security of the biometric data. Inter- 
operability is also required among the devices used for the authentication. Moreover, very 
often biometric authentication in itself is not sufficient as a conclusive proof of identity 
and has to be complemented with multiple other proofs ... 

Keywords: authentication, biometrics, identity theft prevention, privacy 
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55 Session 2: Local spatiotemporal descriptors for visual recognition of spoken phrases ^ 
^ Guoylng Zhao, Matti Pietikainen, Abdenour Hadid 

^ September 2007 Proceedings of the international worl<shop on Human-centered 
multimedia HCM '07 

Publisher: ACM Press 

Full text available: ^ pdff61 4.07 KB) Additional Information: full citation , abstract , references , index terms 

Visual speech information plays an important role in speech recognition under noisy 
conditions or for listeners with hearing impairment. In this paper, we propose local 
spatiotemporal descriptors to represent and recognize spol<en isolated phrases based 
solely on visual input. Positions of the eyes determined by a robust face and eye detector 
are used for localizing the mouth regions in face images. Spatiotemporal local binary 
patterns extracted from these regions are used for describing phras ... 

Keywords: face and eye detection, local spatiotemporal descriptors, mouth region 
localization, visual speech recognition 
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